From 84ca88aa2da50cd09ab8d13a8b57784cd7de12a4 Mon Sep 17 00:00:00 2001
From: badra001 <donald.e.badrak.ii@census.gov>
Date: Sat, 26 Feb 2022 16:21:21 -0500
Subject: [PATCH] add tags for the vpn attachments

---
 vpn-transit-gateway/README.md |  3 +++
 vpn-transit-gateway/main.tf   | 21 +++++++++++++++++++++
 2 files changed, 24 insertions(+)

diff --git a/vpn-transit-gateway/README.md b/vpn-transit-gateway/README.md
index f8a3afb..1b1053b 100644
--- a/vpn-transit-gateway/README.md
+++ b/vpn-transit-gateway/README.md
@@ -64,6 +64,9 @@ No modules.
 | Name | Type |
 |------|------|
 | [aws_customer_gateway.vpn](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/customer_gateway) | resource |
+| [aws_ec2_tag.vpn_tag_created_by](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ec2_tag) | resource |
+| [aws_ec2_tag.vpn_tag_environment](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ec2_tag) | resource |
+| [aws_ec2_tag.vpn_tag_name](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ec2_tag) | resource |
 | [aws_ec2_transit_gateway_route_table_association.route_table](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ec2_transit_gateway_route_table_association) | resource |
 | [aws_ec2_transit_gateway_route_table_propagation.propagate](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ec2_transit_gateway_route_table_propagation) | resource |
 | [aws_vpn_connection.vpn](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/vpn_connection) | resource |
diff --git a/vpn-transit-gateway/main.tf b/vpn-transit-gateway/main.tf
index 96dcba4..77b154f 100644
--- a/vpn-transit-gateway/main.tf
+++ b/vpn-transit-gateway/main.tf
@@ -146,6 +146,27 @@ resource "aws_vpn_connection" "vpn" {
   )
 }
 
+# attachments are implicity.  Use aws_ec2_tag to set the tags
+#   see https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/ec2_transit_gateway_vpn_attachment
+
+resource "aws_ec2_tag" "vpn_tag_created_by" {
+  for_each    = var.create ? local.vpn_settings : {}
+  resource_id = aws_vpn_connection.vpn[each.key].transit_gateway_attachment_id
+  key         = "boc:created_by"
+  value       = local.base_tags["boc:created_by"]
+}
+resource "aws_ec2_tag" "vpn_tag_name" {
+  for_each    = var.create ? local.vpn_settings : {}
+  resource_id = aws_vpn_connection.vpn[each.key].transit_gateway_attachment_id
+  key         = "Name"
+  value       = format("%v%v%v", (var.use_tgw_prefixes ? local._prefixes["transit-gateway-vpn"] : ""), local._prefixes["vpn-connection"], each.key)
+}
+resource "aws_ec2_tag" "vpn_tag_environment" {
+  for_each    = var.create ? local.vpn_settings : {}
+  resource_id = aws_vpn_connection.vpn[each.key].transit_gateway_attachment_id
+  key         = "boc:tgw_environmen"
+  value       = var.tgw_environment
+}
 
 ## #---
 ## # vpn routes and propagation